PT-2022-11793 · Zammad · Zammad

Published

2022-02-04

Updated

2022-07-12

CVE-2021-43145

CVSS v3.1

8.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Zammad version 5.0.1

Description The issue allows for unauthorized access with existing user accounts under certain LDAP configurations.

Recommendations For Zammad version 5.0.1, update to a newer version that addresses the issue, as the current version allows unauthorized access with existing user accounts under specific LDAP configurations.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-43145

Affected Products

Zammad

PT-2022-11793 · Zammad · Zammad

CVE-2021-43145

Related Identifiers

Affected Products

References · 4